Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
881	5.4	警告 Network	langflow	Langflow Desktop	langflowのLangflow Desktopにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-3341	2026-06-17 15:46	2026-06-11	Show	GitHub Exploit DB Packet Storm

882	6.1	警告 Network	IBM	IBM DevOps Plan	IBMのIBM DevOps PlanにおけるHTTP ヘッダのスクリプト構文の不適切な無効化に関する脆弱性	CWE-644 HTTP ヘッダのスクリプト構文の不適切な無効化	CVE-2026-4096	2026-06-17 15:46	2026-06-11	Show	GitHub Exploit DB Packet Storm

883	5.4	警告 Network	VMware	VMware Cloud Foundation VMware Telco Cloud Platform VMware vSphere VMware Aria Operations	VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2026-41722	2026-06-17 15:46	2026-06-8	Show	GitHub Exploit DB Packet Storm

884	8	重要 Network	VMware	VMware Cloud Foundation VMware Telco Cloud Platform VMware vSphere VMware Aria Operations	VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41723	2026-06-17 15:46	2026-06-8	Show	GitHub Exploit DB Packet Storm

885	5.9	警告 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42767	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

886	3.7	低 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性	CWE-325 暗号化処理の不備	CVE-2026-42770	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

887	6.2	警告 Local	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-42771	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

888	8.8	重要 Network	Kovidgoyal	Kitty	KovidgoyalのKittyにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-42850	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

889	7.8	重要 Local	Kovidgoyal	Kitty	KovidgoyalのKittyにおける複数の脆弱性	CWE-862 CWE-94	CVE-2026-42851	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

890	9.8	緊急 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-44170	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4341	-		-	-	In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown epf_ntb_epc_destroy() duplicates the teardown that the caller is s…	-	CVE-2026-46009	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

4342	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix u32 overflow in pushbuf reloc bounds check nouveau_gem_pushbuf_reloc_apply() validates each relocation with …	-	CVE-2026-46006	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

4343	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: Handle probe errors properly The probe procedure of setup_card() in caiaq driver doesn't treat the error cases grace…	-	CVE-2026-46004	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

4344	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ext2: reject inodes with zero i_nlink and valid mode in ext2_iget() ext2_iget() already rejects inodes with i_nlink == 0 when i_m…	-	CVE-2026-46002	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

4345	-		-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: sd: fix missing put_disk() when device_add(&disk_dev) fails If device_add(&sdkp->disk_dev) fails, put_device() runs scsi_di…	-	CVE-2026-45997	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

4346	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ibmasm: fix OOB reads in command_file_write due to missing size checks The command_file_write() handler allocates a kernel buffer…	-	CVE-2026-45994	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

4347	-		-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path The previous fix for handling the error from setup_card() missed t…	-	CVE-2026-45992	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

4348	-		-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Sync interrupt shadow to cached vmcb12 after VMRUN of L2 After VMRUN in guest mode, nested_sync_control_from_vmcb02() …	-	CVE-2026-45987	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

4349	-		-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: ccree - fix a memory leak in cc_mac_digest() Add cc_unmap_result() if cc_map_hash_request_final() fails to prevent potent…	-	CVE-2026-45986	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

4350	-		-	-	In the Linux kernel, the following vulnerability has been resolved: s390/cio: Fix device lifecycle handling in css_alloc_subchannel() `css_alloc_subchannel()` calls `device_initialize()` before set…	-	CVE-2026-45981	2026-06-2 02:17	2026-05-27	Show	GitHub Exploit DB Packet Storm